Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Shopify' disclosed a bug submitted by b'saltymermaid' 
b'Ability to connect an external login service for unverified emails/accounts at accounts.shopify.com'
13 Apr 2022 timeline
b'EXNESS' disclosed a bug submitted by b'socialcodia' 
b'CRLF Injection - Http Response Splitting '
13 Apr 2022 timeline
b'EXNESS' disclosed a bug submitted by b'a_ashwarya' 
b'Acess control vulnerability (read/write)'
13 Apr 2022 timeline
b'EXNESS' disclosed a bug submitted by b'a_ashwarya' 
b'Access control vulnerability (read/write)'
13 Apr 2022 timeline
b'EXNESS' disclosed a bug submitted by b'a_ashwarya' 
b'Access control vulnerability (read-only)'
13 Apr 2022 timeline
b'EXNESS' disclosed a bug submitted by b'a_ashwarya' 
b'Taking position in a discontinued forex pair without executing any trades'
13 Apr 2022 timeline
b'Omise' disclosed a bug submitted by b'ravansurya' 
b'Open S3 Bucket Accessible by any User'
13 Apr 2022 timeline
b'Reddit' disclosed a bug submitted by b'dingleberryfarts' 
b'Regular Expression Denial of Service vulnerability'
12 Apr 2022 timeline
b'GitLab' disclosed a bug submitted by b'vakzz' 
b'RCE via WikiCloth markdown rendering if the `rubyluabridge` gem is installed'
12 Apr 2022 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'someonenobbd' 
b'[Python]: Add Server-side Request Forgery sinks'
11 Apr 2022 timeline
b'MTN Group' disclosed a bug submitted by b'muhnad' 
b'Insecure Storage of Sensitive Information on lonestarcell.com server'
09 Apr 2022 timeline
b'SecurityScorecard' disclosed a bug submitted by b'cryptoknight028' 
b'HTML injection through Invite Teammate email'
09 Apr 2022 timeline
b'Nextcloud' disclosed a bug submitted by b'shakierbellows' 
b'Folder architecture and Filesizes of private file drop shares can be getten'
09 Apr 2022 timeline
b'Kraden' disclosed a bug submitted by b'4bhin8v' 
b"Found Origin IP's Lead To Access To kraden.com"
09 Apr 2022 timeline
b'Omise' disclosed a bug submitted by b'oblivionlight' 
b'Host Header Injection leads to Open Redirect and Content Spoofing or Text Injection.'
09 Apr 2022 timeline
b'Uber' disclosed a bug submitted by b'boobalan123' 
b'Exposed Golang Pprof debugger at https://cn-geo1.uber.com/'
07 Apr 2022 timeline
b'Uber' disclosed a bug submitted by b'hunt4p1zza' 
b"Chain of IDORs Between U4B and Vouchers APIs Allows Attackers to View and Modify Program/Voucher Policies and to Obtain Organization Employees' PII"
07 Apr 2022 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'saajanbhujel' 
b'Reflected XSS on []'
07 Apr 2022 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'geeknik' 
b'[www.] Path-based reflected Cross Site Scripting'
07 Apr 2022 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'splint3rsec' 
b'[CVE-2020-3452] on '
07 Apr 2022 timeline
1 ... 139 140 141 142 143 ... 742
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM